Nikholas Pcenicni
|
544f75b0ee
|
Enhance documentation and configuration for Velero integration. Update README.md to clarify Velero's lack of web UI and usage instructions for CLI. Add CSI Volume Snapshot support in playbooks and roles, and include Velero service details in noble_landing_urls. Adjust kustomization.yaml to include VolumeSnapshotClass configuration, ensuring proper setup for backups. Improve overall clarity in related documentation.
|
2026-03-28 19:34:43 -04:00 |
|
Nikholas Pcenicni
|
90509bacc5
|
Update homepage values.yaml to replace external siteMonitor URLs with in-cluster service URLs for improved reliability. Enhance comments for clarity on service monitoring and Prometheus widget configurations. Adjust description for better accuracy regarding uptime checks and resource monitoring.
|
2026-03-28 17:13:57 -04:00 |
|
Nikholas Pcenicni
|
e4741ecd15
|
Enhance homepage values.yaml by adding support for RBAC, service account creation, and site monitoring for various services. Update widget configurations for Prometheus and introduce new widgets for datetime and Kubernetes resource monitoring. Adjust layout and styling settings for improved UI presentation.
|
2026-03-28 17:11:01 -04:00 |
|
Nikholas Pcenicni
|
f6647056be
|
Add homepage entry to noble_landing_urls and update kustomization.yaml to include homepage resource
|
2026-03-28 17:07:06 -04:00 |
|
Nikholas Pcenicni
|
90fd8fb8a6
|
Refactor noble cluster configurations by removing deprecated Argo CD application management files and transitioning to a streamlined Ansible-driven installation approach. Update kustomization.yaml files to reflect the new structure, ensuring clarity on resource management. Introduce new namespaces and configurations for cert-manager, external-secrets, and logging components, enhancing the overall deployment process. Add detailed README.md documentation for each component to guide users through the setup and management of the noble lab environment.
|
2026-03-28 17:02:50 -04:00 |
|
Nikholas Pcenicni
|
41841abc84
|
Update Kyverno policies-values.yaml to enhance namespace exclusions for policy enforcement. Add detailed comments on the exclusion strategy and provide instructions for refreshing PolicyReports. This change aims to improve clarity and management of policy violations across various namespaces.
|
2026-03-28 16:56:13 -04:00 |
|
Nikholas Pcenicni
|
7a62489ad6
|
Enhance noble_landing_urls role by adding support for generating a Headlamp ServiceAccount token with a configurable duration. Update documentation to reflect changes in the markdown output for Headlamp sign-in. Modify fetch_credentials task to include token generation alongside existing credential fetching. These updates improve the usability and security of the Headlamp integration.
|
2026-03-28 16:38:47 -04:00 |
|
Nikholas Pcenicni
|
0e8eaa2f0d
|
Update .gitignore to include generated noble-lab-ui-urls.md and enhance README.md with new role documentation. Refactor noble.yml to incorporate noble_landing_urls role for improved URL management. Add ingress configurations for alertmanager, prometheus, longhorn, and vault to support TLS termination via Traefik. Update network policies and values.yaml for vault to allow traffic from Traefik. These changes aim to streamline deployment and enhance service accessibility.
|
2026-03-28 16:32:21 -04:00 |
|
Nikholas Pcenicni
|
a48ac16c14
|
Update .gitignore to include .env file and enhance README.md with instructions for deploying secrets. Refactor noble.yml to improve Kubernetes health check handling and update templates for error reporting. Modify cert-manager and metallb tasks to apply secrets from .env and adjust timeout settings. Clarify Newt installation requirements in tasks. These changes aim to streamline deployment processes and improve documentation clarity.
|
2026-03-28 15:36:52 -04:00 |
|
Nikholas Pcenicni
|
46cedc965f
|
Refactor Argo CD application management by removing noble-kyverno and noble-platform configurations, transitioning to Ansible-driven installations. Update documentation to clarify the optional nature of app-of-apps and the role of kustomization.yaml as an empty resource holder. Ensure users are informed about the need to delete stale Applications when migrating from previous configurations.
|
2026-03-28 15:17:54 -04:00 |
|
Nikholas Pcenicni
|
207cdca0cf
|
Enhance Kyverno configuration in values.yaml by adding support for two replicas and enabling API priority and fairness. This update aims to improve resilience during rolling restarts and manage API traffic more effectively under load.
|
2026-03-28 02:55:47 -04:00 |
|
Nikholas Pcenicni
|
bf185b71a9
|
Enhance Kyverno's performance by increasing Kubernetes client QPS and burst limits in values.yaml to prevent rate limiting issues under load. This adjustment aims to improve the stability of the Kyverno health lease during high API/etcd usage.
|
2026-03-28 02:50:23 -04:00 |
|
Nikholas Pcenicni
|
fc985932fe
|
Update cert-manager configurations to use DNS-01 challenge with Cloudflare for both production and staging ClusterIssuers. Modify README.md to reflect the new DNS-01 setup and provide instructions for creating the necessary Cloudflare API token secret. This change enhances certificate issuance reliability when using Cloudflare's proxy services.
|
2026-03-28 02:41:51 -04:00 |
|
Nikholas Pcenicni
|
90cd34c34f
|
Enable cert-manager for admission webhook TLS in kube-prometheus-stack values.yaml to prevent Kyverno pre-hook Job failures during Argo sync. Update noble-platform.yaml to adjust Helm chart sources and maintain proper order for Kyverno and kube-prometheus-stack, ensuring correct resource management and deployment flow.
|
2026-03-28 02:25:59 -04:00 |
|
Nikholas Pcenicni
|
05717c7e6a
|
Refactor Argo CD application configuration to adopt a multi-source approach for noble-platform, removing Helm chart definitions from kustomization.yaml. Update noble-platform.yaml to directly reference Helm chart sources and clarify documentation in README.md and apps/README.md regarding the new structure and resource representation in the UI.
|
2026-03-28 02:18:02 -04:00 |
|
Nikholas Pcenicni
|
0a6c9976da
|
Refactor Argo CD application configuration to utilize a single source for the noble-platform, consolidating Helm chart management within kustomization.yaml. Update values.yaml to enable Helm inflation and revise documentation in README.md and apps/README.md to clarify the new structure and improve UI representation of resources.
|
2026-03-28 02:13:36 -04:00 |
|
Nikholas Pcenicni
|
c5319a5436
|
Refactor Argo CD application configuration to utilize plain Kustomize for YAML resources and streamline Helm chart management. Update kustomization.yaml to remove Helm chart definitions, shifting to a multi-source approach in noble-platform.yaml. Revise documentation in README.md and apps/README.md to clarify the new structure and eliminate the need for Helm inflation in values.yaml.
|
2026-03-28 02:10:44 -04:00 |
|
Nikholas Pcenicni
|
c148454e91
|
Refine Argo CD documentation and configuration. Update README.md to clarify the relationship between noble-root and child applications, and enhance instructions for syncing workloads. Modify root-application.yaml to specify the use of kustomization.yaml for cluster workloads. Adjust values.yaml to enable Helm inflation for Kustomize charts. Update apps/README.md to streamline application management and clarify deployment processes.
|
2026-03-28 02:05:09 -04:00 |
|
Nikholas Pcenicni
|
445a1ac211
|
Update Headlamp and Vault documentation; enhance RBAC configurations in Argo CD. Modify Headlamp README to clarify sessionTTL handling and ServiceAccount permissions. Add Cilium network policy instructions to Vault README. Update Argo CD values.yaml for default RBAC settings, ensuring local admin retains full access while new users start with read-only permissions. Reflect these changes in CLUSTER-BUILD.md.
|
2026-03-28 02:02:17 -04:00 |
|
Nikholas Pcenicni
|
d5f38bd766
|
Update README.md and CLUSTER-BUILD.md to enhance documentation for Vault Kubernetes auth and ClusterSecretStore integration. Add one-shot configuration instructions for Kubernetes auth in README.md, and update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, including new components like Headlamp and Renovate, along with their deployment details and next steps.
|
2026-03-28 01:41:52 -04:00 |
|
Nikholas Pcenicni
|
a65b553252
|
Stop tracking talos kubeconfig; remove Authentik token from git; add Newt kubeseal example
Remove committed talos/kubeconfig (cluster admin credentials). Ignore talos/kubeconfig at repo root.
Replace hardcoded LDAP outpost token with AUTHENTIK_LDAP_OUTPOST_TOKEN from .env.
Document Sealed Secrets workflow for Newt (kubeseal script + README updates). Clarify Talos secrets use talsecret/SOPS, not Sealed Secrets.
Made-with: Cursor
|
2026-03-28 01:19:58 -04:00 |
|
Nikholas Pcenicni
|
a5e624f542
|
Update CLUSTER-BUILD.md to reflect the current state of the Talos cluster, detailing progress through Phase D (observability) and advancements in Phase E (secrets). Include updates on Sealed Secrets, External Secrets Operator, and Vault configurations, along with deployment instructions and next steps for Kubernetes auth and ClusterSecretStore integration. Mark relevant tasks as completed and outline remaining objectives for future phases.
|
2026-03-28 01:17:22 -04:00 |
|
Nikholas Pcenicni
|
2b4f568632
|
Update kube-prometheus-stack values.yaml to clarify Loki datasource configuration and enhance observability documentation in CLUSTER-BUILD.md. Include deployment instructions for Loki and Fluent Bit, and mark tasks related to Grafana integration as completed.
|
2026-03-28 00:56:49 -04:00 |
|
Nikholas Pcenicni
|
7caba0d90c
|
Update CLUSTER-BUILD.md to include kube-prometheus-stack Helm chart details, enhance observability phase with Grafana ingress configuration, and clarify deployment instructions for monitoring components. Mark tasks as completed for kube-prometheus-stack installation and PVC binding on Longhorn.
|
2026-03-28 00:28:54 -04:00 |
|
Nikholas Pcenicni
|
2a64f40f93
|
Enable pre-upgrade job for Longhorn in values.yaml, update MetalLB README for clarity on LoadBalancer IP assignment, and enhance Talos configuration with node IP validation for VIPs. Update cluster build documentation to reflect new application versions and configurations.
|
2026-03-27 23:45:00 -04:00 |
|
Nikholas Pcenicni
|
d2c53fc553
|
Remove deprecated Argo CD application configurations and related files for noble cluster, including root-application.yaml, kustomization.yaml, and individual application manifests for argocd, cilium, longhorn, kube-vip, and monitoring components. Update kube-vip daemonset.yaml to enhance deployment strategy and environment variables for improved configuration.
|
2026-03-27 23:02:17 -04:00 |
|
Nikholas Pcenicni
|
4263da65d8
|
Update Cilium application.yaml to enhance ignoreDifferences for cilium-operator Deployment and improve Helm sync handling. Modify kube-vip daemonset.yaml to adjust VIP interface and add new environment variables for better configuration. Update README.md with troubleshooting tips for kube-vip and Helm upgrade conflicts.
|
2026-03-27 19:29:54 -04:00 |
|
Nikholas Pcenicni
|
ae5bfdf2f7
|
Update Cilium application configuration to ignore differences for hubble-server-certs Secret, add Helm value files for better management, and enhance Argo CD kustomization with resource ordering and sync options.
|
2026-03-27 19:16:31 -04:00 |
|
Nikholas Pcenicni
|
55833b2593
|
Enhance Longhorn application configuration by adding skipCrds option and retry settings to improve deployment resilience and error handling.
|
2026-03-27 17:47:54 -04:00 |
|
Nikholas Pcenicni
|
76700a7b3f
|
Update Longhorn application configuration to specify targetRevision as "1.11.1" and add sync options for PruneLast and ServerSideApply to enhance deployment management.
|
2026-03-27 16:40:55 -04:00 |
|
Nikholas Pcenicni
|
8cacf5f5de
|
Enhance monitoring configurations by enabling persistence for Loki and updating storage settings for Prometheus and Alertmanager to use Longhorn. Add Longhorn application to kustomization.yaml for improved storage management.
|
2026-03-27 16:27:58 -04:00 |
|
Nikholas Pcenicni
|
036f8ef37e
|
Update monitoring configurations to disable persistence in Loki and add emptyDir storage for Prometheus and Alertmanager
|
2026-03-27 04:26:25 -04:00 |
|
Nikholas Pcenicni
|
769e3125ee
|
Add targetRevision to kube-prometheus-stack and loki-stack configurations for version flexibility
|
2026-03-27 04:22:42 -04:00 |
|
Nikholas Pcenicni
|
df25d1ac2b
|
Add monitoring applications to kustomization.yaml for enhanced observability
|
2026-03-27 04:21:11 -04:00 |
|
Nikholas Pcenicni
|
19c5d056e5
|
Remove ingress controller configuration from Cilium application.yaml
|
2026-03-27 04:16:55 -04:00 |
|
Nikholas Pcenicni
|
d39b253693
|
Update Argo CD configuration by enabling service in kube-vip daemonset, replacing argocd-ingress with argocd-server-lb, and updating documentation to reflect changes.
|
2026-03-27 04:06:52 -04:00 |
|
Nikholas Pcenicni
|
369ab99cd1
|
Update Cilium application configuration to enable ingress controller and remove deprecated argocd-server service patch; delete Proxmox VM template files.
|
2026-03-27 04:01:40 -04:00 |
|
Nikholas Pcenicni
|
51d55af86e
|
Update .gitignore and refactor Ubuntu template playbook to use role for Proxmox template management
|
2026-03-27 03:48:32 -04:00 |
|